Duplicate ACKs + delayed retransmission (part 2)

"... how is it possible that Wireshark captures all packets, but my nttcp program misses them?"
The application received all bytes that were sent on the data connection. The ack number in the FIN packet is is the number of bytes received (plus 2 for SYN and FIN bit).
Using TCP protocol, the application is not aware of packets but just passes a byte-stream to the send buffer. TCP will segment the data and send it in IP packets over the network. In case a packet get lost, TCP as a reliable transport will take care of re-transmitting the packet (without any notification/intervention of the application).
So the difference of the data see in your application and the data that was traced should only be the retransmitted packets, packets 51 and and 124 in your capture.
Regards Matthias

" but there's still the issue of the Duplicate ACKS, which suggests that somewhere in a lower layer packets got dropped. However, Wireshark seems to have managed to capture all packets!"

Well, this trace does not contain all packets that were actually flowing as dumpcap couldn't keep up with the amount of traffic. And, the packets are not necessarily 'dropped in the lower layer'.

In your case the packets are dropped in the TCP layer of Windows7 because the TCP checksum is incorrect in packets that caused the duplicate ACKs. _ws.expert.severity gt "warn" will yield those packets if you enable TCP checksum validation in the protocol preferences.